Responsibilities

• Able to design a security architecture blueprint (from Devsecops, application, infrastructure, operational security, for applications to interact with. Define the process, provisioning, interfaces, provide recommendations.
• Build workplan and drive the team.
• Able to engage and execute Security Vulnerability Scanning activities ( HCR/NVA/Pen Test/ SAST/DAST activities etc) & resolve findings.
• Familiar with implementing HSM, EDRs, DLP , enterprise antivirus product implementation & operationalization.
• Familiar with container orchestration security (either OpenShift/CloudFoundation/Kubernetes). Securing containers, monitoring traffic. Container repository security, secure images.
• Familiar with securing at scale enterprise BigData Architectures with role-based access controls, DLP tools, monitoring tools to ensure proper data usage & reporting & prevention activities.
• Familiar with operational security processes
  • OS level patching
  • Application-level patching
  • Operational housekeeping and archival.
  • Server and application hardening procedure & steps
  • IM8 policy
• Thales CipherTrust & HSM.
• DigitalGuardian DLP Product Suite.
• vmWare CarbonBlack EDR.
• TrendMicro DeepSecurity Product Suite.
• Tenable Nessus, Burp Suite Enterprise

Requirements

• Bachelor's degree / Diploma in Computer Science, Information Security, or a related field.

• Minimum 05 years of experience as a Security Solution Architect.
• CISSP/CCSP/CCSK certification or its equivalent is preferred
• Must have a specialization in 1-2 areas of Cyber domains such as Identity Access Management, Cloud-native Security, Container orchestration platform security with a broad understanding of other areas.

• Familiar with Gov standard of security posture including planning and running SSAT, Security Compliance Check, Security Vulnerability Scanning, DAST & SAST.
• Able to defend and articulate security posture to ACISO
• Work with cloud native security tools & environment.